Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C0F8EEE8FE7811F08F0BF8B2DAE4EC9C.roa
File: C0F8EEE8FE7811F08F0BF8B2DAE4EC9C.roa (raw, json)
Hash identifier: 6TzRY+n2lcRveqArurQyA6MVhr1pu2HNq6uTz1vy5jg=
Subject key identifier: 22:64:4E:1A:6A:8F:92:3B:BD:58:AA:B1:BB:87:36:EE:F0:BA:50:35
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01B7B6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C0F8EEE8FE7811F08F0BF8B2DAE4EC9C.roa
Signing time: Sat 31 Jan 2026 07:45:05 +0000
ROA not before: Sat 31 Jan 2026 07:44:59 +0000
ROA not after: Sun 08 Mar 2026 07:44:59 +0000
asID: 49505
IP address blocks: 154.209.218.0/24 maxlen: 24
154.209.219.0/24 maxlen: 24
154.209.220.0/24 maxlen: 24
154.209.221.0/24 maxlen: 24
154.209.222.0/24 maxlen: 24
154.209.223.0/24 maxlen: 24
154.211.9.0/24 maxlen: 24
154.211.10.0/24 maxlen: 24
154.211.11.0/24 maxlen: 24
154.211.16.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112566 (0x1b7b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 31 07:44:59 2026 GMT
Not After : Mar 8 07:44:59 2026 GMT
Subject: CN=697db300-eafb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:7a:83:4a:fa:8a:07:bd:a9:a9:4c:5c:d2:a7:
66:ef:83:97:1a:e4:70:7e:71:0a:2f:38:9a:b9:02:
4e:c0:88:82:4a:98:2f:c3:16:fa:cb:ac:62:05:f7:
9d:5b:cd:4b:33:6a:70:7f:fb:75:ee:fb:74:36:18:
44:aa:3a:c8:61:b0:dd:d8:f1:6e:ba:6a:90:00:d0:
22:9f:1c:6e:47:a3:27:6b:91:fb:e0:68:46:0d:45:
cb:90:26:1b:ac:29:24:84:1a:8d:da:a5:c3:ae:33:
57:17:e9:c7:93:89:8a:90:03:7d:2f:f5:1f:40:6c:
dc:24:e6:25:6c:75:4b:b1:17:91:39:eb:86:fa:c0:
e3:eb:8e:71:30:64:0a:e0:4e:e6:39:02:5f:30:64:
40:0d:50:36:88:e6:84:08:67:5a:23:37:76:8d:0a:
c7:13:6d:85:03:22:60:39:54:4e:af:6e:97:14:b8:
26:e6:4d:e0:5b:5d:75:ef:ab:0e:a3:73:37:dc:47:
8d:ee:50:5e:a6:5a:1e:7b:52:36:af:53:2e:82:1f:
47:d1:fa:d3:c9:1e:0f:c6:ef:eb:f2:04:ea:51:7c:
ac:58:63:5c:85:24:37:c8:6b:bf:a5:fa:90:0c:30:
c6:f3:ba:c9:ee:2d:1e:00:95:49:53:9b:83:c5:66:
56:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:64:4E:1A:6A:8F:92:3B:BD:58:AA:B1:BB:87:36:EE:F0:BA:50:35
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C0F8EEE8FE7811F08F0BF8B2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.218.0-154.209.223.255
154.211.9.0-154.211.11.255
154.211.16.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:5a:7f:cc:0c:0d:95:2a:2e:6a:16:ec:b0:ec:4e:6d:b1:57:
5f:2d:34:ec:4b:51:3b:e0:4a:87:52:9d:5a:b8:88:8f:fb:ba:
88:44:71:21:c4:73:95:5f:83:e4:7f:7e:d1:6c:c1:93:aa:3e:
04:3c:99:b1:d6:87:dd:97:b1:b4:24:ff:e4:26:9e:20:31:11:
3a:e9:3e:c9:9c:52:c6:39:0d:15:78:0b:84:70:4b:51:2b:c0:
1e:59:d1:2f:79:5f:32:f7:d2:9e:2f:d2:4e:70:8f:33:b6:1d:
45:f5:74:85:e3:5c:6f:14:1d:d4:10:79:5a:18:8d:3a:f5:da:
98:f9:70:8a:5c:e4:43:75:26:37:de:e6:7f:a0:91:94:e6:11:
17:62:0d:0e:d5:b4:93:c6:3a:d1:1e:3c:e5:80:39:5b:9b:e1:
ef:39:e6:4f:0d:3f:67:28:48:9b:b0:62:6a:f0:4c:f0:4b:3b:
cd:2c:a3:9f:84:37:1c:d7:02:a7:7b:7a:01:a7:6d:e5:76:50:
84:6e:13:48:38:4d:b4:bf:74:82:8e:9f:40:12:c2:dc:85:1e:
7f:d1:65:c2:07:82:70:fd:36:2f:50:fb:20:4a:74:80:5e:23:
2d:ca:82:3e:e0:6a:60:19:a4:aa:8e:f5:5c:28:72:be:b6:b3:
ec:64:bd:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 00:04:40 2026 by rpki-client